$ rpki-client -vvf rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa File: 56D3C71687AB11F095613811C4F9AE02.roa (raw, json) Hash identifier: 0iBnup8wptUHFtoJ6sIo1Mi6U0z/k64gTDUxYk5oZKg= Subject key identifier: 03:D3:83:83:6D:E4:77:CA:BA:C5:C0:0B:0E:46:29:6D:AD:91:14:2D Certificate issuer: /CN=A9115F15/serialNumber=AB535E132884BCA345F7AF6913AB0A397765E7A9 Certificate serial: 07D3 Authority key identifier: AB:53:5E:13:28:84:BC:A3:45:F7:AF:69:13:AB:0A:39:77:65:E7:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:03:58 +0000 ROA not before: Mon 16 Feb 2026 21:18:21 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 18200 IP address blocks: 43.224.192.0/22 maxlen: 22 43.224.195.0/24 maxlen: 24 61.5.208.0/20 maxlen: 20 61.5.208.0/24 maxlen: 24 101.101.0.0/18 maxlen: 18 103.43.156.0/22 maxlen: 22 114.69.192.0/19 maxlen: 19 114.69.192.0/22 maxlen: 22 114.69.200.0/22 maxlen: 22 114.69.204.0/24 maxlen: 24 114.69.208.0/21 maxlen: 21 114.69.216.0/22 maxlen: 22 180.214.96.0/19 maxlen: 19 180.214.96.0/22 maxlen: 22 202.87.128.0/19 maxlen: 19 202.87.129.0/24 maxlen: 24 202.87.135.0/24 maxlen: 24 202.87.138.0/24 maxlen: 24 202.87.140.0/22 maxlen: 22 202.87.144.0/22 maxlen: 22 202.87.151.0/24 maxlen: 24 202.87.156.0/24 maxlen: 24 2404:2200::/32 maxlen: 32 2404:2200:10::/48 maxlen: 48 2404:2200:17::/48 maxlen: 48 2404:2200:22::/48 maxlen: 48 2404:2200:24::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.crl rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115F15, serialNumber=AB535E132884BCA345F7AF6913AB0A397765E7A9 Validity Not Before: Feb 16 21:18:21 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4717d-c61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2f:75:9d:83:3c:8e:d4:21:03:c7:4c:8e:09: bb:e5:ba:b7:83:c0:a1:97:f3:e1:03:42:4e:e0:4e: 96:03:53:6d:76:f9:ff:5b:87:12:9a:de:86:82:8c: 62:cb:6c:f3:9d:8b:5e:0d:ab:47:81:86:a8:af:09: c5:92:0f:a5:72:43:50:2e:f9:71:91:38:1b:70:a8: d5:b0:05:d8:a7:a7:55:76:d0:06:d6:66:54:f2:7a: b0:55:ac:9c:09:99:70:d8:0f:30:f5:b9:8b:70:d7: fd:2a:9a:18:0f:a8:e3:ea:97:3f:6a:0e:63:6c:f5: ed:cd:1e:49:c7:7c:58:a0:29:00:f5:d1:95:13:e7: 53:59:72:db:34:12:29:33:20:7c:a6:b6:27:4e:f6: 10:2e:11:81:c5:2c:7c:29:9f:86:94:88:a1:28:30: 05:b3:25:10:cb:21:46:b4:dc:09:18:f9:fe:9b:2b: 44:a4:df:70:44:0b:0f:8c:b4:1d:8d:83:11:4b:85: 01:ca:9c:08:2a:0b:31:98:fc:31:76:29:42:23:75: 1c:5b:55:d0:6a:39:28:fd:55:27:ff:0e:6a:0f:f5: 52:b2:3c:02:6b:21:e5:1e:7f:b1:d9:5c:c4:fd:57: eb:ac:7d:fc:23:17:c5:77:d6:92:cb:4e:22:36:18: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D3:83:83:6D:E4:77:CA:BA:C5:C0:0B:0E:46:29:6D:AD:91:14:2D X509v3 Authority Key Identifier: keyid:AB:53:5E:13:28:84:BC:A3:45:F7:AF:69:13:AB:0A:39:77:65:E7:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/q1NeEyiEvKNF969pE6sKOXdl56k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q1NeEyiEvKNF969pE6sKOXdl56k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115F15/FFED27943A9311EBABDE232FC4F9AE02/56D3C71687AB11F095613811C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.224.192.0/22 61.5.208.0/20 101.101.0.0/18 103.43.156.0/22 114.69.192.0/19 180.214.96.0/19 202.87.128.0/19 IPv6: 2404:2200::/32 Signature Algorithm: sha256WithRSAEncryption 91:f7:17:43:f7:5c:16:f0:7c:58:d5:ae:40:b4:f0:e7:42:4d: 4e:95:60:70:9f:f9:cc:3e:c8:aa:0e:d9:dd:de:45:99:8d:40: 47:79:10:2d:c3:88:bb:b3:62:e2:c0:b8:f0:03:82:2f:cd:f2: 03:dd:10:43:72:d6:a6:40:c4:98:7a:0e:2c:6a:52:1a:05:52: 73:3d:b0:5a:01:1c:81:1a:84:f2:12:a7:78:52:62:4f:5e:64: 70:a2:58:41:1f:e5:5c:9a:e5:39:e0:3e:cf:b0:80:ed:eb:f3: db:0e:67:3b:bd:9b:3f:0d:e2:cf:5c:d8:c4:e6:ec:f7:27:6a: 6d:cc:34:a1:b4:ac:72:81:f2:a4:b5:be:b9:45:04:b3:0e:02: 63:c0:12:25:86:7b:3b:4b:e9:17:d7:0c:c5:70:91:c3:e8:f5: 9f:2b:1e:dd:8f:2d:f9:0e:83:58:fc:8b:87:dd:dc:16:38:ec: 0d:9a:ba:59:c4:d9:73:6b:d2:a8:af:bd:22:37:c2:47:f4:7c: ec:e0:ad:ca:15:44:85:6a:62:8b:13:31:18:9f:0a:ba:e1:5e: 6f:fd:0d:1c:ae:03:c9:08:35:72:3a:61:50:63:b2:9e:69:8d: 9f:9e:4b:0d:c4:d0:b5:89:4e:49:21:81:59:1c:f7:29:31:ef: b2:06:8c:44 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVGMTUxMTAvBgNVBAUTKEFCNTM1RTEzMjg4NEJDQTM0NUY3QUY2OTEzQUIwQTM5 Nzc2NUU3QTkwHhcNMjYwMjE2MjExODIxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzE3ZC1jNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy91nYM8jtQhA8dMjgm75bq3g8Chl/PhA0JO4E6WA1Ntdvn/W4cSmt6Ggoxi y2zznYteDatHgYaorwnFkg+lckNQLvlxkTgbcKjVsAXYp6dVdtAG1mZU8nqwVayc CZlw2A8w9bmLcNf9KpoYD6jj6pc/ag5jbPXtzR5Jx3xYoCkA9dGVE+dTWXLbNBIp MyB8prYnTvYQLhGBxSx8KZ+GlIihKDAFsyUQyyFGtNwJGPn+mytEpN9wRAsPjLQd jYMRS4UBypwIKgsxmPwxdilCI3UcW1XQajko/VUn/w5qD/VSsjwCayHlHn+x2VzE /VfrrH38IxfFd9aSy04iNhga8QIDAQABo4ICkzCCAo8wHQYDVR0OBBYEFAPTg4Nt 5HfKusXACw5GKW2tkRQtMB8GA1UdIwQYMBaAFKtTXhMohLyjRfevaROrCjl3Zeep MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUYxNS9GRkVEMjc5NDNB OTMxMUVCQUJERTIzMkZDNEY5QUUwMi9xMU5lRXlpRXZLTkY5NjlwRTZzS09YZGw1 NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ExTmVFeWlFdktORjk2OXBFNnNLT1hkbDU2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTVGMTUvRkZFRDI3OTQzQTkzMTFFQkFCREUyMzJGQzRGOUFFMDIvNTZEM0M3MTY4 N0FCMTFGMDk1NjEzODExQzRGOUFFMDIucm9hMFIGCCsGAQUFBwEHAQH/BEMwQTAw BAIAATAqAwQCK+DAAwQEPQXQAwQGZWUAAwQCZyucAwQFckXAAwQFtNZgAwQFyleA MA0EAgACMAcDBQAkBCIAMA0GCSqGSIb3DQEBCwUAA4IBAQCR9xdD91wW8HxY1a5A tPDnQk1OlWBwn/nMPsiqDtnd3kWZjUBHeRAtw4i7s2LiwLjwA4IvzfID3RBDctam QMSYeg4salIaBVJzPbBaARyBGoTyEqd4UmJPXmRwolhBH+VcmuU54D7PsIDt6/Pb Dmc7vZs/DeLPXNjE5uz3J2ptzDShtKxygfKktb65RQSzDgJjwBIlhns7S+kX1wzF cJHD6PWfKx7djy35DoNY/IuH3dwWOOwNmrpZxNlza9Kor70iN8JH9Hzs4K3KFUSF amKLEzEYnwq64V5v/Q0crgPJCDVyOmFQY7KeaY2fnksNxNC1iU5JIYFZHPcpMe+y BoxE -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:10 2026 by rpki-client